Portfolio

Led infrastructure and compliance operations for the National Technical Assistance Center (NDTAC) application stack. Provided full lifecycle support for AWS-hosted infrastructure, ensuring alignment with FedRAMP Moderate and Education Department security standards.

Key Contributions:

• Built and managed ECS-based container platform with EFS and RDS integration.
• Established secure CI/CD pipelines with approval gates and artifact signing.
• Managed audit evidence, vulnerability remediation, and configuration baselines.

Compliance Oversight:
Authored POA&M responses, worked with 3PAO assessors, implemented automated log centralization and monthly control attestation workflows.

Provided technical leadership on infrastructure re-architecture and system modernization for Sandia’s event coordination platform. Managed secure migration of legacy services to modern containerized and cloud-hosted solutions.

Key Contributions:

• Replaced legacy monolith with containerized workloads orchestrated via ECS.
• Developed Terraform automation for repeatable, auditable deployments.
• Led implementation of NIST 800-53 security controls and internal audit support.

Security Stack:
IAM policy hardening, audit logging, incident response playbooks, automated baseline scanning via AWS Config & Inspector.

Designed and implemented the secure, scalable infrastructure behind the Army OSBP’s event management platform. Led all architecture, operations, and compliance planning to ensure performance and security for DOD outreach activities.

Key Contributions:

• Architected a multi-tier AWS GovCloud deployment with automated infrastructure as code (Terraform).
• Implemented identity federation and secure S3/CloudFront distribution.
• Designed and enforced DevSecOps pipelines with vulnerability scanning and audit logging.

Compliance & Security:
FedRAMP Moderate alignment, NIST 800-53 control mapping, automated logging (CloudWatch, GuardDuty), KMS encryption at rest and transit.